Managing user permissions | Sphene Community Tools

Board » General » Managing user permissions

Posted by pigletto Posts 43 Registered at 2009-11-25 07:59:00	2009-11-25 08:22:19 - Managing user permissions
	Hi! I want to set specific permissions to my users, eg. allow user to lock threads in category as documentation says at: http://sct.sphene.net/wiki/show/Roles/. I can't find a proper way to do it. Is this functionality buggy? I've noticed few things. First, default sphboard template 'showThreads.html' uses: {% if perms.post.change_post %} {% trans "Thread Options:" %} {% if thread.allow_sticking %} Is 'perms.post.change_post' correct? Shouldn't it be 'perms.sphboard.change_post'? Second. in sphene/communitytools/models.py the model RoleMember is defined like: class RoleMember(models.Model): """ A role member is the relation between a given role and a 1.) user OR 2.) rolegroup - one of those two have to be null ! This relation can have additional limitations - e.g. for the board it might only be active within one given category - see RoleMemberLimitation. If there are no limitations (has_limitations = False) then the role is active for the user globally within the role's group. """ role = models.ForeignKey( Role ) user = models.ForeignKey( User, null = True ) rolegroup = models.ForeignKey( 'RoleGroup', null = True ) According to docstring, I think that there should be something like 'blank=True' in definition of user and rolegroup fields. Otherwise it is not possible to have one of them set to null (via Admin). At last I did what I needed by creating new Role, then by adding new RoleMember (first, I had to add blank=True to RoleMember model) with specific user set.
Posted by Herbert Poul Posts 663 Registered at 2006-10-22 13:09:07	2009-11-25 08:33:32 - Re: Managing user permissions
	you shouldn't use the django admin for role administration, just go to "/community/admin/permission/role/list/" and use that interface.. as for your first question.. i have to look into the code but don't have time right now, i'll let you know when i know more.. Hey, we have Signatures !!! Great, isn't it ? ;)
Posted by pigletto Posts 43 Registered at 2009-11-25 07:59:00	2009-12-03 06:38:10 - Re: Managing user permissions
	Herbert, I've sent you an e-mail message (25.11.2009) concerning this topic. Did you get it?
Posted by Herbert Poul Posts 663 Registered at 2006-10-22 13:09:07	2009-12-03 07:58:04 - Re: Managing user permissions
	hi, yes i got it. sorry for not replying, it has been quite busy lately.. i'll get to it this weekend at latest. i have to think which permissions would make the most sense on securing it. but you are right, it should be fixed asap :( Hey, we have Signatures !!! Great, isn't it ? ;)
Posted by pigletto Posts 43 Registered at 2009-11-25 07:59:00	2009-12-03 10:05:58 - Re: Managing user permissions
	Herbert Poul said @ 2009-12-03 07:58:04: hi, yes i got it. sorry for not replying, it has been quite busy lately.. i'll get to it this weekend at latest. i have to think which permissions would make the most sense on securing it. but you are right, it should be fixed asap :( OK, I was just wondering if my e-mail was not classified as spam. I think that 'community_manage_roles' permission might be used there.
Posted by Herbert Poul Posts 663 Registered at 2006-10-22 13:09:07	2009-12-06 23:36:47 - Re: Managing user permissions
	sorry again for the late answer. showThread.html: you are right, that was a very very deprecated permission check .. i have exchanged it with: {% if thread.allow_sticking or thread.allow_locking or thread.allow_moving %} which will take flag permissions into considerations .. role permissions: i have added permission checks to the admin interface now :) (in svn trunk) this should solve your current problems with permissions? Hey, we have Signatures !!! Great, isn't it ? ;)

Please login to post a reply.